Love Hörnquist Åstrand lha at
Sun Jul 26 01:36:27 MDT 2009

>> gss_store_cred() might help you (not implemented in heimdal yet)
>> There is no protable way to do this that works for all mechs.
>> gss_krb5_copy_ccache() + gss_krb5_import_cred() will partly get you  
>> there.
> And how do I create a blob that I can pass between the process
> that does the gss_krb5_copy_ccache() and the process that will do
> the gss_krb5_import_cred()?

Pull out the krbtgt and marshall the krb5_creds with krb5_store_creds,  
decode with krb5_ret_creds() in the reciving end.

>> If you want a gss_export_cred() we should probably make one.
> gss_export_cred() and gss_import_cred() would be very useful.

You plan to cross security domain (uid/session/etc ?)


More information about the samba-technical mailing list